cvedb.io
CVE-2021-41579
HIGH · CVSS 7.8
EPSS exploitation probability: 0%
Published 2021-10-04T18:15:09.720 · Last modified 2026-06-17T04:08:40.740

Summary

LCDS LAquis SCADA through 4.3.1.1085 is vulnerable to a control bypass and path traversal. If an attacker can get a victim to load a malicious els project file and use the play feature, then the attacker can bypass a consent popup and write arbitrary files to OS locations where the user has permission, leading to code execution.

Affected products

laquisscada — scada

Does this affect you?

Add your gear to cvedb and we'll alert you only when laquisscada ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.